Filtered by vendor Sonicwall Subscriptions
Filtered by product Directory Services Connector Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-44219 2 Microsoft, Sonicwall 2 Windows, Directory Services Connector 2024-11-21 7.8 High
A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature.
CVE-2020-5148 1 Sonicwall 1 Directory Services Connector 2024-11-21 8.2 High
SonicWall SSO-agent default configuration uses NetAPI to probe the associated IP's in the network, this client probing method allows a potential attacker to capture the password hash of the privileged user and potentially forces the SSO Agent to authenticate allowing an attacker to bypass firewall access controls.